i want my session id to be invisible to others in the browser.. can it be done? usually we will store our session_id in the cookies which will be easy taken by somebody....
barns101
11:39 am on Aug 23, 2006 (gmt 0)
It can't be effectively hidden. The session ID will either be stored in a cookie (easily retrieved by the user) or appended to URLs (even easier to see ;) ). The session ID needs to be passed to the server by the browser, so there's no way that you can stop a user from find it if they really want to.
jatar_k
4:53 pm on Aug 23, 2006 (gmt 0)
is it other users stealing someone's cookie that you are worried about?
